| 제목 | Comodo Security Solutions Comodo Internet Security Premium 12.3.4.8162 Improper Validation of Integrity Check Value |
|---|
| 설명 | Comodo update server uses manifest file cis_update_x64.xml to define metadata of binaries to update. Comodo IS doesn't verify authenticity and integrity of this manifest file. Threat actor can deliver malicious script and executes to gain remote control as SYSTEM privilege. |
|---|
| 원천 | ⚠️ https://drive.google.com/file/d/1qnWarYsTSc5_sV6o8ULv0LBvGfKKXPxn/view?usp=sharing |
|---|
| 사용자 | FPT IS Security (UID 72751) |
|---|
| 제출 | 2025. 06. 25. AM 10:42 (10 개월 ago) |
|---|
| 모더레이션 | 2025. 07. 05. PM 05:36 (10 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 315010 [Comodo Internet Security Premium 12.3.4.8162 Manifest File cis_update_x64.xml 원격 코드 실행] |
|---|
| 포인트들 | 18 |
|---|